styx

SUSPICIOUS. The skill's financial capabilities match its stated BTC→sBTC bridge purpose, but it carries high inherent risk because it can autonomously move funds and depends on a not-fully-verifiable Styx SDK/backend, with evidence of a Vercel-hosted intermediary and a pre-configured API key. This looks more like a risky DeFi transaction skill than confirmed malware.